Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for May 23, 2013
An "enum" for Python 3
An unexpected perf feature
LWN.net Weekly Edition for May 16, 2013
A look at the PyPy 2.0 release
This just goes to show that Ted is not a `security professional'. Kerberos V5 and IPSec were just decade-long aberrations. You need to do more than that to be a security professional.
Quotes of the week
Posted Oct 7, 2007 1:22 UTC (Sun) by jschrod (subscriber, #1646)
For my work at many financial institutions, MAC models are needed, and SELinux is a nice tool there to formulate resource access policies as needed. But in many (actually, more) cases, MAC is overshoot, and - likewise - formulation and maintenance of fine-grained SELinux policies cost too much to yield appropriate return in terms of risk mitigation. And that's what IT security policies are concerned with, risk mitigation, not threat prevention.
IT security is about money, and not about some abstract program behaviour. And if security costs too much, it's not worth it. (Actually, that's a general statement, beyond IT security, its truth demonstrated by the last few years of US foreign and interior policy.) IT security is a mean, not an end in itself. This is forgotten much too often.
Posted Oct 8, 2007 19:55 UTC (Mon) by nix (subscriber, #2304)
Posted Oct 8, 2007 23:40 UTC (Mon) by jschrod (subscriber, #1646)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds